Adding Permissions to a Mailbox in Exchange 2007 for Group Mailbox

Posted on 2009-04-21
Medium Priority
Last Modified: 2012-08-13
I have created a mailbox called IT Help.  I want to be able to have the IT staff add this mailbox to their existing Outlook client so that issues can be looked at by everyone.  The issue I am having is that all users that access this mailbox should have all access to move, change and send as permissions but no one but the administrator have access to delete messages.  I have been able to setup the users through powershell using Full access, which obviously works for testing access.  The problem I have now is that when I remove FullAccess, and leave, send-as, readpermission, changeowner, and changepermission, the user can no longer open the mailbox for viewing.  What I am I missing?  Thanks in advance for any assistance.
Question by:dakkonblackblade
  • 4
LVL 65

Assisted Solution

Mestha earned 300 total points
ID: 24198721
What you want to do isn't possible at the mailbox level.
Exchange mailbox permissions are Full mailbox or Nothing at all. No middle ground.
If you want to restrict the users then you have to grant the permissions through Outlook on each folder in Outlook.


Basically you need to grant the permission at the top of the tree, so the mailbox can be opened, then set the permissions further down.

The only additional permission they need for access is Send As.

LVL 12

Accepted Solution

GusGallows earned 450 total points
ID: 24335579
I think Mestha is correct, however, try the following in powershell: (Assume the group is called IT Staff)

Add-ADPermission IT Help -User:IT Staff -ExtendedRights:Send-As -AccessRights:ReadProperty, WriteProperty -Properties:'Personal Information

Not sure if this will help without the full access though.
LVL 12

Expert Comment

ID: 24335592
Let's try this with the code snippet so it doesn't remove all my single quotes:
Add-ADPermission IT Help -User:IT Staff -ExtendedRights:Send-As -AccessRights:ReadProperty, WriteProperty -Properties:'Personal Information

Open in new window

Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

LVL 12

Expert Comment

ID: 24335594
Well heck. OK, those tab characters are single quotes. :P
LVL 12

Expert Comment

ID: 24335602
*Sigh* They are double-quotes. I'm going back to bed.

Author Closing Comment

ID: 31572988
Thank you all.  I appreciate the feedback.

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Eseutil Hard Recovery is part of exchange tool and ensures Exchange mailbox data recovery when mailbox gets corrupt due to some problem on Exchange server.
You finally migrated Public Folders to Office 365, decommissioned the Public Folder mailbox database and since then, when you send an email from on-premise to mail-enabled Public Folders, you get the following error: "Misconfigured public folder mai…
In this video we show how to create a mailbox database in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Servers >> Data…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…
Suggested Courses

578 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question